Wind River Support Network

HomeDefectsSCP6-775
Fixed

SCP6-775 : Security Advisory - linux - CVE-2016-4578

Created: May 31, 2016    Updated: Dec 3, 2018
Resolved Date: Aug 10, 2016
Found In Version: 6.0.0.29
Fix Version: 6.0.0.31
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Kernel

Description

sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4578

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube